Tweetovi

Blokirali ste korisnika/cu @skeptic_fx

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @skeptic_fx

  1. 1. velj
    Poništi
  2. proslijedio/la je Tweet
    Poništi
  3. proslijedio/la je Tweet

    Strict, nonce-based CSP now deployed on a good portion of . Yay!

    Poništi
  4. proslijedio/la je Tweet
    28. sij

    Over the past few years I've spent 100s (1000s?) of hours studying how companies have scaled their security. Here are my slides that distill what I've learned- the big, scalable, systematic wins that measurably improve your security posture.

    Prikaži ovu nit
    Poništi
  5. proslijedio/la je Tweet
    23. sij

    🎬 Just switched to Stream, it lets you upload a video and then you get a <stream> HTML code that does all the dirty work for you including auto switching the quality based on a visitor's bandwidth. Can see it in action here: (click (>) Play)

    Prikaži ovu nit
    Poništi
  6. 17. sij

    This week I did more `git rebase -i HEAD~2 && git push --force` than I did all my life.

    Poništi
  7. 17. sij
    Poništi
  8. 14. sij
    Poništi
  9. proslijedio/la je Tweet
    10. sij

    Want some contrarian security takes backed up by data? Good: SMS 2FA Bad: Immediately applying security updates

    Poništi
  10. proslijedio/la je Tweet
    7. sij

    my mom asked me if I use a password manager. me, pleased she's asking: "yeah, I use 1password." mom: "really? I thought you're not supposed to do that." me: "really? where did you read that?" [5 minutes later] me: "wait, one password is the NAME OF THE PASSWORD MANAGER"

    Prikaži ovu nit
    Poništi
  11. proslijedio/la je Tweet

    With the recent SHA-1 news, it’s important to understand why collisions and chosen-prefix attacks have different impacts on security. Luckily I wrote a blog post about this!

    Prikaži ovu nit
    Poništi
  12. 7. sij

    Unlike what it states, the policy still has an effect. It reports to the DOM event. The DOM event could report back to backend or discard.

    Prikaži ovu nit
    Poništi
  13. 7. sij

    Hello , ! A small nit-pick about Chrome and CSP report-only mode. Since the advent of the DOM event "SecurityPolicyViolation" event the following console error is not true anymore. FF and Safari doesn't complain.

    Prikaži ovu nit
    Poništi
  14. proslijedio/la je Tweet
    7. sij

    The majority of endpoint compromises involve web browsers — by putting space between users’ devices and where web code executes, browser isolation makes endpoints substantially more secure.

    Poništi
  15. proslijedio/la je Tweet
    3. sij

    Curve9767: a new prime-order elliptic curve defined over a finite field that is fast on an ARM Cortex-M0+, and has fast inversion, square root (point compression) and cube roots (constant-time hash-to-curve). Source code and a (detailed) whitepaper:

    Poništi
  16. 1. sij
    Poništi
  17. proslijedio/la je Tweet

    The "personal growth" section at Barnes & Noble is out of control.

    Poništi
  18. proslijedio/la je Tweet

    Happy 50th Birthday to Viswanathan Anand, the living legend of chess! 🎉 On this special day, we want to take you through the highlights of his unprecedented life in this video. Many happy returns of the day, the Tiger of Madras!

    Poništi
  19. 24. pro 2019.

    Hacky hackmas!

    Poništi
  20. 18. pro 2019.

    TIL about CSP DOM events aka SecurityPolicyViolationEvent: Are people using this? Good way to filter well-known violations that doesn't break functionality. Also forms a basis for DOM based firewalls or IDS :)

    Poništi

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·